NAME

afclient.conf - Configuration File for afclient

INTRODUCTION

Afclient supports several mechanisms to supply configuration and run-
time parameters: command line options, afclient.conf and hard-coded
defaults. When the same information is supplied in more than one way,
the highest precedence mechanism is used. When configuration file is
used (option: -fFILE) command line options like --reverseudp,
--udpmode, --remoteadmin, --load, --Load and --pass are ignored.
Options from configuration file are taken before values from command
line (with the exception of --keyfile, --storefile, --dateformat,
--ignorepkeys and the options connected with http proxy and auto-
reconnect support). When something is not declared, hard-coded values
are used.

DESCRIPTION

Afclient uses configuration file, which name is supplied by the -fFILE
option. The afclient.conf file is the set of command-line like options,
which can be written in any order.

OPTIONS

servernameNAME
name of the host, where afserver is running
manageportPORT
manage port number - server must be listening on it (default: 50126)
hostnameNAME
the name of this host/remote host - the final destination of the
packets (default: the name returned by hostname function)
portnumPORT
the port we are forwarding connection to
localnameNAME
local machine name for connection with afserver (used to bind socket
to different interfaces)
localportNAME
local port name for connection with afserver (used to bind socket to
different addressees)
localdesnameNAME
local machine name for connections with destination application (used
to bind socket to different interfaces)
idSTRING
sends the id string to afserver
passPASSWORD
set the password used for client identification (default: no
password)
ignorepkeys
ignore invalid server's public keys
keyfileFILE
the name of the file with RSA key (default: client.rsa)
cerfileFILE
the name of the file with certificate (default: no certificate used)
storefileFILE
the name of the file with stored public keys (default: known_hosts)
dateformatFORMAT
format of the date printed in logs (see 'man strftime' for details)
(default: %d.%m.%Y %H:%M:%S). Format string is trimmed. In order to
include white characters into format string, use dots to mark beginning
and end of the text. If the dot is first or last character, it's
removed. Only one character from the beginning and one from the end can
be removed.
keep-aliveN
send keepalive packets every N seconds (default: not send keepalive
packets)
ar-start
enable auto-reconnection when afserver is not reachable on start
(default: disabled)
ar-quit
enable auto-reconnection after normal afserver quit (default:
disabled)
noar
disable auto-reconnection after premature afserver quit (default:
enabled)
ar-triesN
try N times to reconnect (default: unlimited)
ar-delayN
wait N seconds between reconnect tries (default: 5)
udpmode
udp mode - client will use udp protocol to communicate with the
hostname:portnum
reverseudp
reverse udp forwarding. Udp packets will be forwarded from
hostname:portnum to the server name:manageport
remoteadmin
remote administration mode. (using '-p PORT' will force afclient to
use port rather than stdin-stdout)
logLOGCMD
log choosen information to file/socket
ipv4
use ipv4 only
ipv6
use ipv6 only
loadFILE
load a module for user's packets filtering
LoadFILE
load a module for service's packets filtering
use-https
use https proxy instead of http proxy
proxynameNAME
the name of the machine with proxy server
proxyportPORT
the port used by proxy server (default: 8080)
pa-credU:P
the user (U) and password (P) used in proxy authorization
pa-t-basic
the Basic type of proxy authorization (default)